Category: Uncategorized
-

CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers [email protected] (The Hacker News)
A new ongoing malware campaign has been observed distributing three different stealers, such as CryptBot, LummaC2, and Rhadamanthys hosted on Content Delivery Network (CDN) cache domains since at least February 2024. Cisco Talos has attributed the activity with moderate confidence to a threat actor tracked as CoralRaider, a suspected Vietnamese-originRead More
-
$10 Million Bounty on Iranian Hackers for Cyber Attacks on US Gov, Defense Contractors Ryan Naraine
Four Iranians are accused of hacking into critical systems at the Departments of Treasury and State and dozens of private US companies. The post $10 Million Bounty on Iranian Hackers for Cyber Attacks on US Gov, Defense Contractors appeared first on SecurityWeek. Read More
-
Spain Reopens a Probe Into a Pegasus Spyware Case After a French Request to Work Together Associated Press
The judge with Spain’s National Court said there is reason to believe that the new information provided by France can “allow the investigations to advance.” The post Spain Reopens a Probe Into a Pegasus Spyware Case After a French Request to Work Together appeared first on SecurityWeek. Read More
-

Apache Cordova App Harness Targeted in Dependency Confusion Attack [email protected] (The Hacker News)
Researchers have identified a dependency confusion vulnerability impacting an archived Apache project called Cordova App Harness. Dependency confusion attacks take place owing to the fact that package managers check the public repositories before private registries, thus allowing a threat actor to publish a malicious package with the same name to a public package repository. This&Read More
-
The Battle Continues: Mandiant Report Shows Improved Detection But Persistent Adversarial Success Kevin Townsend
Mandiant’s M-Trends 2024 report shows that defenses are improving – and that may be true. But the reality remains that these same statistics demonstrate that if anything, the attackers still retain the upper hand. The post The Battle Continues: Mandiant Report Shows Improved Detection But Persistent Adversarial Success appeared first on SecurityWeek. Read More
-
Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations Ionut Arghire
Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations. The post Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations appeared first on SecurityWeek. Read More
-
U.S. cracks down on commercial spyware with visa restrictions
Post ContentRead More
-
UnitedHealth Says Patient Data Exposed in Change Healthcare Cyberattack Ionut Arghire
UnitedHealth confirms that personal and health information was stolen in a ransomware attack that could cost the company up to $1.6 billion. The post UnitedHealth Says Patient Data Exposed in Change Healthcare Cyberattack appeared first on SecurityWeek. Read More
-

Webinar: Learn Proactive Supply Chain Threat Hunting Techniques [email protected] (The Hacker News)
In the high-stakes world of cybersecurity, the battleground has shifted. Supply chain attacks have emerged as a potent threat, exploiting the intricate web of interconnected systems and third-party dependencies to breach even the most formidable defenses. But what if you could turn the tables and proactively hunt these threats before they wreak havoc? We invite…
-
Creating a patch management policy: Step-by-step guide
Post ContentRead More
